Description
Before version 4.8.2, WordPress was vulnerable to a directory traversal attack during unzip operations in the ZipArchive and PclZip components.
Remediation
References
Related Vulnerabilities
WordPress Plugin Developer Formatter Cross-Site Request Forgery (2012.0.1.39)
WordPress 4.0.x Multiple Vulnerabilities (4.0 - 4.0.12)
WordPress Plugin WP Socializer-Simple & Easy Social Media Share Icons Cross-Site Scripting (7.2)
Moodle Permissions, Privileges, and Access Controls Vulnerability (CVE-2011-4285)